Re: Dear Microsoft... Rebooting servers id NOT security..
From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 05/21/05
- Next message: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Previous message: Steven L Umbach: "Re: AD auditing is giving too much info"
- In reply to: Duse: "Dear Microsoft... Rebooting servers id NOT security.."
- Next in thread: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Reply: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 20 May 2005 18:47:14 -0400
From: "Duse" <dude@soft.com>
| The recent rend for critical patches for win 2003 to require rebooting the
| server is USELESS!!!
|
| Win 2003 is a SEVER, it cannot be continually rebooted and offer any Server
| level to its users.
|
| Additionally the fact that only a partial installation occures ( which
| leaves the server in a unstable state) is also USELESS...
|
| FYI: server are NOT workstations and do not have people sitting at them to
| monitor and react to your auto updates and installs..
|
| Is this truely what you think improving security is....
|
| Unhappy..
|
It was like that for BT4 and Win2K server. To install files that are in use the have to be
qued and upon a reboot and before the OD goes into the GUI, the files are replaced with
their respective updates.
The only way to mitigate this is download the EXE versions of the patches. Create a script
that runs the patched with the switch parameters to require no user intervention and don't
don't allow the server to be rebooted. the the files are queued and upon the next sceduled
reboot the fuiles are replaced. Relize that whiles the patches may have been executed, thet
patches will not be in effect until the server is rebooted.
Here is an example of a NT4 patch and its switch parameters to show you this has been around
for quite a while...
WindowsNT4Server-KB840987-x86-ENU.exe -z -n -q
-- Dave http://www.claymania.com/removal-trojan-adware.html http://www.ik-cs.com/got-a-virus.htm
- Next message: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Previous message: Steven L Umbach: "Re: AD auditing is giving too much info"
- In reply to: Duse: "Dear Microsoft... Rebooting servers id NOT security.."
- Next in thread: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Reply: David H. Lipman: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
